{"data":{"id":"26359d2c-a586-4a25-86a2-a0e3584da02b","title":"GHSA-9rjw-3gwp-f59v: Coder's workspace app upsert allows cross-workspace agent rebinding via user-controlled app ID","summary":"A vulnerability in Coder's workspace app system allows attackers with template authorship or external provisioner access to redirect another user's app traffic to their own workspace. The flaw occurs because the system doesn't properly verify that an app ID belongs to the correct workspace before rebinding it to a different agent (the component that handles connections). App IDs are publicly discoverable, making this attack feasible for privileged users.","solution":"Upgrade to a patched version: v2.34.2 (for release line 2.34), v2.33.8 (for 2.33), v2.32.7 (for 2.32), or v2.29.17 (for the ESR line 2.29). The patch adds verification to ensure that existing workspace app rows belong to the workspace being built and rejects attempts to reassign apps across workspaces. No workarounds are available, so upgrading is required.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-9rjw-3gwp-f59v","publishedAt":"2026-07-06T20:55:37.000Z","cveId":"CVE-2026-55429","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":["supply_chain"],"issueType":"vulnerability","affectedPackages":["github.com/coder/coder/v2@< 2.29.17 (fixed: 2.29.17)","github.com/coder/coder/v2@>= 2.30.0, < 2.32.7 (fixed: 2.32.7)","github.com/coder/coder/v2@>= 2.33.0, < 2.33.8 (fixed: 2.33.8)","github.com/coder/coder/v2@>= 2.34.0, < 2.34.2 (fixed: 2.34.2)"],"affectedVendors":["Anthropic"],"affectedVendorsRaw":["Coder","Anthropic"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-07-06T20:55:37.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["integrity","confidentiality"],"aiComponentTargeted":"agent","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":["AML.T0010"]}}